If you have an Asus router, you need to patch it now or risk being hacked

News
By published

Asus router update includes a fix five years in the making

malware
(Image credit: Elchinator from Pixabay)

Asus has pushed out a firmware update affecting many of its router models, and is urging customers to either apply the update immediately, or to restrict WAS access until they can.

In a statement, the company noted that, “If you choose not to install this new firmware version, we strongly recommend disabling services accessible from the WAN side to avoid potential unwanted intrusions,” which includes remote access from WAN, port forwarding, DDNS, VPN server, DMZ, port trigger.

The firmware update addresses no fewer than nine CVEs, including three from 2023, five from 2022, and one dating back as far as 2018. A number of other vulnerabilities and issues were also fixed as part of the motion.

Asus Wi-Fi router security fix

The routers in question include: GT6, GT-AXE16000, GT-AX11000 PRO, GT-AXE11000, GT-AX6000, GT-AX11000, GS-AX5400, GS-AX3000, XT9, XT8, XT8 V2, RT-AX86U PRO, RT-AX86U, RT-AX86S, RT-AX82U, RT-AX58U, RT-AX3000, TUF-AX6000, and TUF-AX5400.

Read more

> These are the best firewalls to keep you safe

> Cisco routers are being targeted by custom Russian malware

> These popular VPN routers are being hacked to spread malware

The most serious vulnerabilities are among the oldest, including the 2018 entry which could be exploited to gain arbitrary code execution, and CVE-2022-26376 which could see unauthorized parties execute memory corruption attacks. Both were awarded a ‘critical’ score of 9.8 under NIST’s National Vulnerability Database.

This comes precisely one month after the company disclosed an error in the configuration files for some of its routers which saw users’ connections interrupted - a fix was automatically issued and affected users did not need to apply a security update (though some reported rebooting the device was necessary).

The best advice comes in the form of staying on top of security fixes for any device connected to the Internet to prevent attackers from gaining unwanted access. Asus’s firmware updates are available on its support page.

Like other router manufacturers, the Taiwanese company stresses the importance of setting up separate passwords for the wireless network and the router admin panel.

Craig Hale
Craig Hale

With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!

Read more
cables going into the back of a broadband router on white background
Netgear urges users to patch major router security issues now
China
Juniper patches security flaws which could have let hackers take over your router
An image of network security icons for a network encircling a digital blue earth.
Industrial networks exposed to attack by faulty Moxa devices
Cyber-security
Juniper Session Smart routers have a critical flaw, so patch now
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Multiple H3C Magic routers hit by critical severity remote command injection, with no fix in sight
Security
Zyxel says it won’t patch security flaws in its old routers
Latest in Pro
Code Skull
Interpol operation arrests 300 suspects linked to African cybercrime rings
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Multiple H3C Magic routers hit by critical severity remote command injection, with no fix in sight
Code Skull
This dangerous new ransomware is hitting Windows, ARM, ESXi systems
ai quantization
Shadow AI: the hidden risk of operational chaos
An abstract image of a lock against a digital background, denoting cybersecurity.
Critical security flaw in Next.js could spell big trouble for JavaScript users
Bambu Lab H2D Vs X1C
I've been reviewing the hotly anticipated Bambu Lab H2D for a month, and it's the most versatile machine I've ever used
Latest in News
An Apple Music pink/pixellated poster advertising DJ with Apple Music
DJ with Apple Music lands, allowing subscribers to build and mix DJ sets directly from its +100 million-song catalog
The Meta Quest 3 and controllers on their charging station which is itself on a wooden desk next to a lamp
Forget Android XR, I've got my eyes on Vivo's new Meta Quest 3 competitor as it could be the most important VR headset of 2025
Samsung Galaxy S25 from the front
The Now Bar on Samsung One UI 7 is about to get a lot more useful – and could soon match Live Activities on iOS
Marvel Rivals
Marvel Rivals will get two new hero skins for Moon Knight and Black Panther this week meaning I'll now need to farm even more Units
An iPhone running iOS 18 on a purple and blue background
iOS 18.4 could launch soon with a major upgrade to your iPhone’s notifications
Netflix Ads
Netflix adds HDR10+ support – great news for Samsung TV owners, but don't expect LG and Sony to do the same any time soon
More about pro
Code Skull

This dangerous new ransomware is hitting Windows, ARM, ESXi systems
Bambu Lab H2D Vs X1C

I've been reviewing the hotly anticipated Bambu Lab H2D for a month, and it's the most versatile machine I've ever used
An iPhone running iOS 18 on a purple and blue background

iOS 18.4 could launch soon with a major upgrade to your iPhone’s notifications
See more latest
Most Popular
An iPhone running iOS 18 on a purple and blue background
iOS 18.4 could launch soon with a major upgrade to your iPhone’s notifications
Code Skull
This dangerous new ransomware is hitting Windows, ARM, ESXi systems
An Apple Music pink/pixellated poster advertising DJ with Apple Music
DJ with Apple Music lands, allowing subscribers to build and mix DJ sets directly from its +100 million-song catalog
The Meta Quest 3 and controllers on their charging station which is itself on a wooden desk next to a lamp
Forget Android XR, I've got my eyes on Vivo's new Meta Quest 3 competitor as it could be the most important VR headset of 2025
Marvel Rivals
Marvel Rivals will get two new hero skins for Moon Knight and Black Panther this week meaning I'll now need to farm even more Units
Klipsch Klipschorn AK7 in a room with lots of dark wood furniture and a bare brick wall
Klipsch just updated two of its most iconic stereo speaker designs, keeping these beautiful retro icons on your most-wanted list
Samsung Galaxy S25 from the front
The Now Bar on Samsung One UI 7 is about to get a lot more useful – and could soon match Live Activities on iOS
A close up of the PlayStation symbol at the top of a PS5 Slim console with a white brick background
Sony has dropped a new PS5 update, improving activities and adding more emoji support
Netflix Ads
Netflix adds HDR10+ support – great news for Samsung TV owners, but don't expect LG and Sony to do the same any time soon
Nvidia RTX 5080 against a yellow TechRadar background
RTX 5080 24GB version teased by MSI - is it time to admit that 16GB isn't enough for 4K?